$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/854367ff-45b7-4925-99a1-97b01f4fabe8.roa File: 854367ff-45b7-4925-99a1-97b01f4fabe8.roa (raw, json) Hash identifier: Au/hjU5iKHDZ9Hen4i70B2hpjU0niGaOEQxzsuUV9sw= Subject key identifier: 94:23:F2:65:FF:C0:A8:2A:CA:4E:4C:81:B6:0C:BB:A2:46:20:98:68 Certificate issuer: /CN=d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5 Certificate serial: 28409E730506E81A4B48A2DFEEBDB5600E7B0A91 Authority key identifier: BC:93:AE:71:0F:AF:14:22:36:08:2F:8E:D9:6B:56:CB:A9:D5:02:8D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/854367ff-45b7-4925-99a1-97b01f4fabe8.roa Signing time: Mon 22 Apr 2024 00:00:00 +0000 ROA not before: Mon 22 Apr 2024 00:00:00 +0000 ROA not after: Mon 27 May 2024 23:59:59 +0000 asID: 8987 IP address blocks: 216.221.166.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/1059b52d-846a-4cbe-a7db-796f1dd8b929.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/1059b52d-846a-4cbe-a7db-796f1dd8b929.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Fri 10 May 2024 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 28:40:9e:73:05:06:e8:1a:4b:48:a2:df:ee:bd:b5:60:0e:7b:0a:91 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5 Validity Not Before: Apr 22 00:00:00 2024 GMT Not After : May 27 23:59:59 2024 GMT Subject: serialNumber=2449dc20c5d343c51defadd71dce2901b1bd1ed880cb39b7a09370f7351f29b2, CN=42519eb9-9579-4979-bdaf-164abd0e290e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:a9:92:c0:72:94:57:d5:5c:e0:ed:93:39:85: 5f:91:89:90:b2:03:4a:1e:85:6b:c6:fa:dd:9d:0a: 1e:b1:80:44:aa:d1:d7:04:c2:5d:2e:19:d0:82:78: 77:80:58:a7:3c:1e:da:4b:bc:14:81:a9:8c:58:fd: d4:ef:ff:9d:a3:2d:32:6c:f6:f2:28:f4:32:70:92: 14:8b:71:49:87:ed:8f:e7:c3:e4:72:ef:5c:4d:f6: 4d:82:80:a9:ee:d8:72:ce:74:f7:42:bb:34:b3:4f: 92:a7:71:d7:11:51:94:ac:f9:ce:a3:7a:23:37:eb: a9:14:fb:ee:b0:e7:6d:80:74:5a:40:b9:f3:b7:28: 47:ab:b6:1d:21:2c:52:ad:ba:49:88:1a:27:19:89: a9:2f:a1:58:c6:29:06:d9:7c:c3:63:9a:f5:ae:8a: 82:9f:87:98:f4:32:0a:40:90:01:9d:60:17:1c:ac: d0:43:89:69:6c:f9:92:1d:3b:35:70:9c:53:a7:52: f0:dd:37:43:da:d1:d7:11:b9:e1:5a:71:88:07:20: bb:44:f4:ae:92:48:56:33:c3:2d:ed:08:5e:b7:41: 1e:fe:df:5e:76:d5:3a:2f:e0:45:5f:bf:1d:47:36: cd:d7:fb:c9:6a:17:4c:d0:2f:2e:f2:50:bb:88:e4: b4:0f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 94:23:F2:65:FF:C0:A8:2A:CA:4E:4C:81:B6:0C:BB:A2:46:20:98:68 X509v3 Authority Key Identifier: keyid:BC:93:AE:71:0F:AF:14:22:36:08:2F:8E:D9:6B:56:CB:A9:D5:02:8D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/854367ff-45b7-4925-99a1-97b01f4fabe8.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 216.221.166.0/23 Signature Algorithm: sha256WithRSAEncryption 8f:29:48:fb:a9:c4:46:0b:03:4c:7e:ae:d0:86:02:aa:0f:6d: fc:9d:ee:f0:b6:00:d2:60:7d:48:6b:a9:62:20:5c:4d:2c:57: 61:f4:23:d0:2f:10:f7:af:51:72:83:03:e0:82:10:7d:31:48: 81:86:b2:71:1c:05:65:c0:d5:f4:3b:23:25:2c:0c:9e:bb:6e: 86:d2:ba:8d:78:89:94:04:35:cd:4b:bd:1b:1c:56:09:a4:b7: 00:60:4d:52:d2:7b:10:13:28:3e:bc:c4:2e:81:cc:89:51:18: 7b:55:65:0e:b7:3a:f7:a9:c6:d1:35:f4:bf:db:1d:11:74:9b: 3a:f2:1a:70:e5:4c:16:df:82:ea:dc:c3:bc:95:31:7e:dc:f1: 86:bc:1f:bf:28:3b:94:ba:93:5a:db:29:72:50:4c:c1:c5:8f: 98:15:36:13:dd:5c:c0:f2:5b:25:fd:bb:bf:a0:97:c0:58:3f: 70:14:23:81:ff:0f:e2:e5:2b:2e:a3:d3:86:77:48:e4:6f:e6: a7:d4:88:a1:16:2e:aa:5c:cc:04:aa:6c:61:1f:9b:cc:a3:7c: 9e:9b:0c:6f:42:9b:94:ca:11:8f:32:69:05:04:78:9b:13:e0: fa:cf:69:aa:61:09:47:a4:70:c1:5e:59:f9:60:e7:05:88:4a: 1a:db:5e:84 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUKECecwUG6BpLSKLf7r21YA57CpEwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZDU4ZmEyY2NiNjZiMWIwZWFlMmQ2ZTNmNWM0NmU5YzJm MmQxZDMwOWRmYmQ5ZDJhZjUwHhcNMjQwNDIyMDAwMDAwWhcNMjQwNTI3MjM1OTU5 WjB6MUkwRwYDVQQFE0AyNDQ5ZGMyMGM1ZDM0M2M1MWRlZmFkZDcxZGNlMjkwMWIx YmQxZWQ4ODBjYjM5YjdhMDkzNzBmNzM1MWYyOWIyMS0wKwYDVQQDEyQ0MjUxOWVi OS05NTc5LTQ5NzktYmRhZi0xNjRhYmQwZTI5MGUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCwqZLAcpRX1Vzg7ZM5hV+RiZCyA0oehWvG+t2dCh6xgESq 0dcEwl0uGdCCeHeAWKc8HtpLvBSBqYxY/dTv/52jLTJs9vIo9DJwkhSLcUmH7Y/n w+Ry71xN9k2CgKnu2HLOdPdCuzSzT5KncdcRUZSs+c6jeiM366kU++6w522AdFpA ufO3KEerth0hLFKtukmIGicZiakvoVjGKQbZfMNjmvWuioKfh5j0MgpAkAGdYBcc rNBDiWls+ZIdOzVwnFOnUvDdN0Pa0dcRueFacYgHILtE9K6SSFYzwy3tCF63QR7+ 31521Tov4EVfvx1HNs3X+8lqF0zQLy7yULuI5LQPAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUlCPyZf/AqCrKTkyBtgy7okYgmGgwHwYDVR0jBBgwFoAUvJOucQ+vFCI2 CC+O2WtWy6nVAo0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xMDU5YjUyZC04 NDZhLTRjYmUtYTdkYi03OTZmMWRkOGI5MjkvZDU4ZmEyY2NiNjZiMWIwZWFlMmQ2 ZTNmNWM0NmU5YzJmMmQxZDMwOWRmYmQ5ZDJhZjUuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvYjhhMWRkMjUtYzMxMy00ZjI1LWFjMjEtYmY1 NTUxNGQ5YzdkLzg1NDM2N2ZmLTQ1YjctNDkyNS05OWExLTk3YjAxZjRmYWJlOC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2I4YTFkZDI1LWMzMTMtNGYyNS1hYzIx LWJmNTU1MTRkOWM3ZC9heHNPcmkxdVAxeEc2Y0x5MGRNSjM3MmRLdlUuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAHY3aYwDQYJKoZIhvcNAQELBQADggEBAI8pSPupxEYLA0x+rtCGAqoPbfyd 7vC2ANJgfUhrqWIgXE0sV2H0I9AvEPevUXKDA+CCEH0xSIGGsnEcBWXA1fQ7IyUs DJ67bobSuo14iZQENc1LvRscVgmktwBgTVLSexATKD68xC6BzIlRGHtVZQ63Ovep xtE19L/bHRF0mzryGnDlTBbfgurcw7yVMX7c8Ya8H78oO5S6k1rbKXJQTMHFj5gV NhPdXMDyWyX9u7+gl8BYP3AUI4H/D+LlKy6j04Z3SORv5qfUiKEWLqpczASqbGEf m8yjfJ6bDG9Cm5TKEY8yaQUEeJsT4PrPaaphCUekcMFeWflg5wWIShrbXoQ= -----END CERTIFICATE-----Generated at Thu May 9 00:38:22 2024 by rpki-client on console-fra.rpki-client.org